x41sec / advisories
☆130Updated last week
Alternatives and similar repositories for advisories:
Users that are interested in advisories are comparing it to the libraries listed below
- Weblogic com.tangosol.util.extractor.ReflectionExtractor RCE☆176Updated 2 years ago
- CVE-2020–14882、CVE-2020–14883☆283Updated 4 years ago
- Redis 4.x & 5.x RCE☆140Updated 5 years ago
- CVE-2021-21972 Exploit☆489Updated last year
- CVE-2021-3156☆111Updated 4 years ago
- Tools, utilities and scripts to help you write redis modules!☆271Updated 9 months ago
- Weblogic IIOP CVE-2020-2551☆333Updated 4 years ago
- Apache Solr Exploits 🌟☆337Updated 4 years ago
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆466Updated last year
- Weblogic coherence.jar RCE☆176Updated 4 years ago
- how detect CVE-2020-2551 poc exploit python Weblogic RCE with IIOP☆210Updated 2 years ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆476Updated 4 years ago
- Exploit for WebSocket Vulnerability in Apache Tomcat☆166Updated 4 years ago
- Spring4Shell - Spring Core RCE - CVE-2022-22965☆127Updated 2 years ago
- forked from frohoff/ysoserial and added my own payloads.☆151Updated 5 years ago
- Proof of Concept Exploit for vCenter CVE-2021-21972☆260Updated 4 years ago
- Multi-language web CGI interfaces exploits.☆393Updated 2 years ago
- Spring Boot Actuator (jolokia) XXE/RCE☆317Updated 4 years ago
- (PoC) Python version of CVE-2019-11043 exploit by neex☆145Updated 5 years ago
- CNVD-2020-10487(CVE-2020-1938), tomcat ajp 文件读取漏洞poc☆119Updated 5 years ago
- MOGWAI LABS JMX exploitation toolkit☆200Updated 2 years ago
- CVE-2020-5902 BIG-IP☆373Updated 3 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆516Updated 4 years ago
- cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vul…☆141Updated 3 years ago
- Exploit and detect tools for CVE-2020-0688☆352Updated 5 years ago
- Remote Code Injection In Log4j☆463Updated 3 years ago
- A simple python script to generate XML payloads works for XMLDecoder based on ProcessBuilder and Runtime exec☆149Updated 4 years ago
- k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.☆286Updated 3 years ago
- Exploit for Drupal 7 <= 7.57 CVE-2018-7600☆133Updated 6 years ago
- GitLab 11.4.7 SSRF配合redis远程执行代码☆122Updated 5 years ago